Page 22 of 162 results (0.003 seconds)

CVSS: 8.1EPSS: 0%CPEs: 21EXPL: 0

CVE-2016-1189

https://notcve.org/view.php?id=CVE-2016-1189

Cybozu Garoon 3.x and 4.x before 4.2.1 allows remote authenticated users to bypass intended restrictions on reading, creating, or modifying a portlet via unspecified vectors. Cybozu Garoon 3.x y 4.x en versiones anteriores a 4.2.1 permite a usuarios remotos autenticados eludir las restricciones destinadas a la lectura, creación o modificación de un portlet a través de vectores no especificados. • http://jvn.jp/en/jp/JVN18975349/index.html http://jvndb.jvn.jp/jvndb/JVNDB-2016-000093 https://garoon.cybozu.co.jp/support/update/package/421sp1.html#03 https://support.cybozu.com/ja-jp/article/9020 •

CVSS: 6.5EPSS: 0%CPEs: 21EXPL: 0

CVE-2016-1188

https://notcve.org/view.php?id=CVE-2016-1188

Cybozu Garoon 3.x and 4.x before 4.2.1 allows remote authenticated users to send spoofed e-mail messages via unspecified vectors. Cybozu Garoon 3.x y 4.x en versiones anteriores a 4.2.1 permite a usuarios remotos autenticados enviar mensajes de correo electrónico suplantados a través de vectores no especificados. • http://jvn.jp/en/jp/JVN18975349/index.html http://jvndb.jvn.jp/jvndb/JVNDB-2016-000077 https://garoon.cybozu.co.jp/support/update/package/421sp1.html#03 https://support.cybozu.com/ja-jp/article/8845 •

CVSS: 6.5EPSS: 0%CPEs: 21EXPL: 0

CVE-2016-1190

https://notcve.org/view.php?id=CVE-2016-1190

Cybozu Garoon 3.1 through 4.2 allows remote authenticated users to bypass intended restrictions on MultiReport reading via unspecified vectors. Cybozu Garoon 3.1 hasta la versión 4.2 permite a usuarios remotos autenticados eludir las restricciones destinadas a la lectura de MultiReport a través de vectores no especificados. • http://jvn.jp/en/jp/JVN18975349/index.html http://jvndb.jvn.jp/jvndb/JVNDB-2016-000094 https://garoon.cybozu.co.jp/support/update/package/421sp1.html#03 https://support.cybozu.com/ja-jp/article/8877 • CWE-284: Improper Access Control •

CVSS: 5.3EPSS: 0%CPEs: 25EXPL: 0

CVE-2016-1191

https://notcve.org/view.php?id=CVE-2016-1191

Directory traversal vulnerability in the Files function in Cybozu Garoon 3.x and 4.x before 4.2.1 allows remote attackers to modify settings via unspecified vectors. Vulnerabilidad de salto de directorio en la función Files en Cybozu Garoon 3.x y 4.x en versiones anteriores a 4.2.1 permite a atacantes remotos modificar ajustes a través de vectores no especificados. • http://jvn.jp/en/jp/JVN14749391/index.html http://jvndb.jvn.jp/jvndb/JVNDB-2016-000078 https://garoon.cybozu.co.jp/support/update/package/421sp1.html#03 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •

CVSS: 4.3EPSS: 0%CPEs: 25EXPL: 0

CVE-2016-1196

https://notcve.org/view.php?id=CVE-2016-1196

Cybozu Garoon 3.x and 4.x before 4.2.1 allows remote authenticated users to bypass intended access restrictions and obtain sensitive Address Book information via an API call, a different vulnerability than CVE-2015-7776. Cybozu Garoon 3.x y 4.x en versiones anteriores a 4.2.1 permite a usuarios remotos autenticados eludir restricciones destinadas al acceso y obtener información sensible de Address Book a través de una llamada API, una vulnerabilidad diferente a CVE-2015-7776. • http://jvn.jp/en/jp/JVN33879831/index.html http://jvndb.jvn.jp/jvndb/JVNDB-2016-000082 https://support.cybozu.com/ja-jp/article/8970 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-264: Permissions, Privileges, and Access Controls •